>>> On 16/05/2008 at 08:46, in message
<[log in to unmask]>, Heather Peake
<[log in to unmask]> wrote:
> I ask because I'm at the stage of trying to release attributes (all be it
> from SQL database rather than LDAP) and I can't work out whether I'm
> releasing them or not or just as your title suggest mangling them!
>...
> I've tested my IDP against the UK Federation thing https://.../printenv and
> I get the same result whether I include the jdbc connector bit or not which
> is why I think I'm mangling the attributes rather than releasing them!
> Links to guides or links to sample files would be appreciated.
I heartily recommend
https://target.iay.org.uk/index.html
for testing against, it's great for showing you what you're releasing. The examples quoted in the original thread are good samples of how to use scriptlet attribute definition, and the only other one I've used is simpleattributedefinition:
<SimpleAttributeDefinition id="urn:mace:dir:attribute-def:employeeNumber" sourceName="workforceID" >
<DataConnectorDependency requires="directory"/>
</SimpleAttributeDefinition>
which just takes a directory attribute from LDAP and returns that in the named SAML assertion. I've not used the jdbc connector but expect that the dependancy won't look a lot different!
Although I originally thought the whole lot was a lot more complicated - it turns out its not! If you want I can send you my own arp.site.xml, but I don't think you'll find anything in it that's not in the I2 dox.
HTH
Andy
--
*********
Andy Swiffin
Senior Network Specialist, Corporate Information systems
Information & Communications Services (ICS)
University of Dundee, Computing Centre, Park Place, Dundee, DD1 4HN
Direct: 01382 388000 (Service Desk)
Visit our website at: www.dundee.ac.uk/ics
*********
The University of Dundee is a registered Scottish charity, No: SC015096
|